Articles in this section

[SPN9] SES Components Ports List and adding them to firewalld

  • Updated

Introduction

This article lists all ports used by SES components and how to open them for each platform (RedHat/CentOS 6/7, Windows Server).

RedHat/CentOS 7

firewall-cmd --permanent --zone=public --add-port=3001/tcp # SES Console HTTP
firewall-cmd --permanent --zone=public --add-port=3443/tcp # SES Console HTTPs
firewall-cmd --permanent --zone=public --add-port=3002/tcp # TRS Console HTTP
firewall-cmd --permanent --zone=public --add-port=3445/tcp # TRS Console HTTPs
firewall-cmd --permanent --zone=public --add-port=8887/tcp # STDispatcher HTTP
firewall-cmd --permanent --zone=public --add-port=8889/tcp # Corpus Manager HTTP
firewall-cmd --permanent --zone=public --add-port=8890/tcp # TM indexer HTTP
firewall-cmd --permanent --zone=public --add-port=8891/tcp # Lookup HTTP
firewall-cmd --permanent --zone=public --add-port=8892/tcp # GDICT HTTP
firewall-cmd --permanent --zone=public --add-port=8893/tcp # DCTI HTTP
firewall-cmd --permanent --zone=public --add-port=8900/tcp # SES Gateway - API SOAP HTTP
firewall-cmd --permanent --zone=public --add-port=8903/tcp # SES Gateway - API REST HTTP
firewall-cmd --permanent --zone=public --add-port=8904/tcp # SES Gateway - API REST HTTPS
firewall-cmd --permanent --zone=public --add-port=9999/tcp # SRS HTTP
firewall-cmd --permanent --zone=public --add-port=9200/tcp # ElasticSearch HTTP
firewall-cmd --permanent --zone=public --add-port=27017/tcp # Mongo HTTP
firewall-cmd --permanent --zone=public --add-port=6379/tcp # Redis HTTP
firewall-cmd --permanent --zone=public --add-port=5672/tcp # AMQP (RabbitMQ) HTTP
firewall-cmd --permanent --zone=public --add-port=15672/tcp # RabbitMQ HTTP
firewall-cmd --permanent --zone=public --add-port=5555/tcp # Coding Engine HTTP
firewall-cmd --permanent --zone=public --add-port=80/tcp # Port forwarding http
firewall-cmd --permanent --zone=public --add-port=443/tcp # Port forwarding https
firewall-cmd --permanent --zone=public --add-port=8025/tcp # Port forwarding smtp
firewall-cmd --permanent --zone=public --add-forward-port=port=443:proto=tcp:toport=3443 #Port forwarding
firewall-cmd --permanent --zone=public --add-forward-port=port=80:proto=tcp:toport=3001 #Port forwarding
firewall-cmd --permanent --zone=public --add-forward-port=port=25:proto=tcp:toport=8025 "Port forwarding smtp"

RedHat/CentOS 6

iptables -A INPUT -m state --state NEW -m tcp -p tcp --dport 3001 -j ACCEPT -m comment --comment "Systran SES Console - HTTP"
iptables -A INPUT -m state --state NEW -m tcp -p tcp --dport 3443 -j ACCEPT -m comment --comment "Systran SES Console - HTTPS"
iptables -A INPUT -m state --state NEW -m tcp -p tcp --dport 3002 -j ACCEPT -m comment --comment "TRS Console HTTP"
iptables -A INPUT -m state --state NEW -m tcp -p tcp --dport 3445 -j ACCEPT -m comment --comment "TRS Console HTTPS"
iptables -A INPUT -m state --state NEW -m tcp -p tcp --dport 8887 -j ACCEPT -m comment --comment "STDispatcher HTTP"
iptables -A INPUT -m state --state NEW -m tcp -p tcp --dport 8889 -j ACCEPT -m comment --comment "Corpus Manager HTTP"
iptables -A INPUT -m state --state NEW -m tcp -p tcp --dport 8890 -j ACCEPT -m comment --comment "TM indexer HTTP"
iptables -A INPUT -m state --state NEW -m tcp -p tcp --dport 8891 -j ACCEPT -m comment --comment "Lookup HTTP"
iptables -A INPUT -m state --state NEW -m tcp -p tcp --dport 8892 -j ACCEPT -m comment --comment "GDICT HTTP"
iptables -A INPUT -m state --state NEW -m tcp -p tcp --dport 8893 -j ACCEPT -m comment --comment "DCTI HTTP"
iptables -A INPUT -m state --state NEW -m tcp -p tcp --dport 8890 -j ACCEPT -m comment --comment "SES Gateway - API SOAP HTTP"
iptables -A INPUT -m state --state NEW -m tcp -p tcp --dport 8900 -j ACCEPT -m comment --comment "Systran SES Gateway SOAP"
iptables -A INPUT -m state --state NEW -m tcp -p tcp --dport 8903 -j ACCEPT -m comment --comment "Systran SES Gateway REST"
iptables -A INPUT -m state --state NEW -m tcp -p tcp --dport 9999 -j ACCEPT -m comment --comment "SRS HTTP"
iptables -A INPUT -m state --state NEW -m tcp -p tcp --dport 9200 -j ACCEPT -m comment --comment "ElasticSearch HTTP"
iptables -A INPUT -m state --state NEW -m tcp -p tcp --dport 27017 -j ACCEPT -m comment --comment "Mongo HTTP"
iptables -A INPUT -m state --state NEW -m tcp -p tcp --dport 6379 -j ACCEPT -m comment --comment "Redis HTTP"
iptables -A INPUT -m state --state NEW -m tcp -p tcp --dport 5672 -j ACCEPT -m comment --comment "AMQP (RabbitMQ) HTTP"
iptables -A INPUT -m state --state NEW -m tcp -p tcp --dport 15672 -j ACCEPT -m comment --comment "RabbitMQ HTTP"
iptables -A INPUT -m state --state NEW -m tcp -p tcp --dport 5555 -j ACCEPT -m comment --comment "Coding Engine HTTP"
iptables -A INPUT -m state --state NEW -m tcp -p tcp --dport 80 -j ACCEPT -m comment --comment "Port forwarding http"
iptables -A INPUT -m state --state NEW -m tcp -p tcp --dport 443 -j ACCEPT -m comment --comment "Port forwarding https"
iptables -A INPUT -m state --state NEW -m tcp -p tcp --dport 8025 -j ACCEPT -m comment --comment "port smtp"
iptables -A FORWARD -p tcp -d 127.0.0.1 --dport 443 -j REDIRECT --to-port 3443 
iptables -A FORWARD -p tcp -d 127.0.0.1 --dport 80 -j REDIRECT --to-port 3001
iptables -A FORWARD -p tcp -d 127.0.0.1 --dport 25 -j REDIRECT --to-port 8025